CVE-2025-48094 | Magic Slider Plugin up to 2.2 on WordPress cross site scripting

22:02 - 14 Jan 2026

A vulnerability was found in Magic Slider Plugin up to 2.2 on WordPress. It has been classified as problematic. The impacted element is an unknown function. This manipulation causes cross site scripting. This vulnerability is tracked as CVE-2025-48094. The attack is possible to be carried out remotely. No exploit exists.